Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 07.06.2024 Exécuté par Jeremy (07-06-2024 18:43:03) Exécuté depuis C:\Users\Jeremy\Desktop Microsoft Windows 10 Professionnel Version 22H2 19045.4474 (X64) (2022-02-04 18:09:17) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-3638445059-336407056-3767679770-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3638445059-336407056-3767679770-503 - Limited - Disabled) Invité (S-1-5-21-3638445059-336407056-3767679770-501 - Limited - Disabled) Jeremy (S-1-5-21-3638445059-336407056-3767679770-1001 - Administrator - Enabled) => C:\Users\Jeremy WDAGUtilityAccount (S-1-5-21-3638445059-336407056-3767679770-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 4.11.15.342 - Advanced Micro Devices, Inc.) AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.22.0.0 - Advanced Micro Devices, Inc.) Hidden AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden AMD Ryzen Master (HKLM\...\{02247819-03CD-414E-AC8D-FD518BFBA445}) (Version: 2.10.0.2227 - Advanced Micro Devices, Inc.) Hidden AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 2.10.0.2227 - Advanced Micro Devices, Inc.) AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden AMD_Chipset_Drivers (HKLM-x32\...\{f3aba9dc-defe-4038-beaa-f2b89df75a66}) (Version: 4.11.15.342 - Advanced Micro Devices, Inc.) Hidden BakkesMod version 3.0 (HKLM\...\{BF029534-4334-4CFC-B771-50B7EE54346F}_is1) (Version: 3.0 - BakkesMod) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield™ 2042 (HKLM-x32\...\{45e281f3-1414-47ea-bb64-4f50d50121f3}) (Version: 1.0.72.56215 - Electronic Arts) Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) Corsair iCUE5 Software (HKLM\...\{A9B0B2D7-8C59-4413-A2FB-99EDBE65A608}) (Version: 5.5.134 - Corsair) deemix-gui (HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\7ea5d267-de32-53ab-b27a-3748ad144b22) (Version: 2022.8.19-r216.06305de9cf - RemixDev) Discord (HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Discord) (Version: 1.0.9003 - Discord Inc.) EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.207.0.5720 - Electronic Arts) Hidden EA app (HKLM-x32\...\{4110929a-8818-4a3f-a02c-2053a6d17f18}) (Version: 13.207.0.5720 - Electronic Arts) EA SPORTS FC 24 (HKLM-x32\...\{D599A8A7-E083-496C-B891-5752CD4E04F3}) (Version: 1.0.87.55322 - Electronic Arts) Epic Games Launcher (HKLM-x32\...\{BE9FFAD2-2901-4F9B-8A0C-59EA51773212}) (Version: 1.3.0.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.) FakerInput (HKLM\...\{BF63C434-BF91-4666-B817-AD7B5C34AE91}) (Version: 0.1.0 - Ryochan7) FiveM (HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\CitizenFX_FiveM) (Version: - Cfx.re) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 85.0.26.0 - Google LLC) Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.3028.0 - Rockstar Games) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Logiciel de base du périphérique HP Deskjet 1050 J410 series (HKLM\...\{29640398-C020-4F79-9757-99A786AC2E5F}) (Version: 28.1.1333.0 - Hewlett-Packard Co.) Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2024.4.572095 - Logitech) Malwarebytes version 4.6.5.293 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.5.293 - Malwarebytes) Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden Microsoft .NET Host - 6.0.31 (x64) (HKLM\...\{59ED1DC1-E3E4-4BC0-B43F-143CCC38FF17}) (Version: 48.124.15198 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 5.0.13 (x64) (HKLM\...\{0F011389-4823-40D0-AB50-711628D820F5}) (Version: 40.52.30715 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.31 (x64) (HKLM\...\{9992D04E-553E-4BC2-B0EC-4A394DD19986}) (Version: 48.124.15198 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 5.0.13 (x64) (HKLM\...\{C84C2DA1-52E2-4183-8F20-88176B77848F}) (Version: 40.52.30715 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 5.0.13 (x64) (HKLM-x32\...\{39e101fa-a1d2-4cea-a853-cf1eb6c70e4d}) (Version: 5.0.13.30715 - Microsoft Corporation) Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.31 (x64) (HKLM\...\{0950F07D-F1C4-47A5-AC88-C5FAA5DC564D}) (Version: 48.124.15198 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 125.0.2535.85 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 125.0.2535.85 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.17628.20110 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.34.31938 (HKLM-x32\...\{4f84f2dc-3f70-433a-8f50-8293e0089b0f}) (Version: 14.34.31938.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.34.31938 (HKLM-x32\...\{080D8397-60F4-44B3-BB95-FBB950CB0B4E}) (Version: 14.34.31938 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.34.31938 (HKLM-x32\...\{8DE5B0D4-A6D8-4F72-B8EF-28776A2EE5D5}) (Version: 14.34.31938 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 6.0.31 (x64) (HKLM\...\{EFE53353-800E-4987-B965-1C968D0F23A4}) (Version: 48.124.15242 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.31 (x64) (HKLM-x32\...\{1a7abdc5-639b-4af0-87c6-dbc511750c6e}) (Version: 6.0.31.33720 - Microsoft Corporation) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 126.0.1 (x64 fr)) (Version: 126.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 101.0.1 - Mozilla) MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD) Nefarius Virtual Gamepad Emulation Bus Driver (HKLM\...\{93D91F60-7C94-4A79-863F-EA713D2EB3F3}) (Version: 1.17.333.0 - Nefarius Software Solutions e.U.) NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation) NVIDIA GeForce Experience 3.28.0.412 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.412 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation) NVIDIA Pilote graphique 555.99 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 555.99 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.17628.20110 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.17628.20102 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.17628.20110 - Microsoft Corporation) Hidden OpenSCAD (remove only) (HKLM\...\OpenSCAD) (Version: 2021.01 - The OpenSCAD Developers) Overwolf (HKLM-x32\...\Overwolf) (Version: 0.251.1.1 - Overwolf Ltd.) Package de pilotes Windows - Adafruit Industries LLC (usbser) Ports (02/25/2016 6.2.2600.0) (HKLM\...\1245A5961AC9D2C18ADF9EEC931D77E059B7F74E) (Version: 02/25/2016 6.2.2600.0 - Adafruit Industries LLC) Package de pilotes Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (11/24/2015 1.2.3.0) (HKLM\...\8B585560B248755A6C5A24D5C0F50FA998310883) (Version: 11/24/2015 1.2.3.0 - Arduino LLC (www.arduino.cc)) Package de pilotes Windows - Arduino LLC (www.arduino.cc) Genuino USB Driver (01/07/2016 1.0.3.0) (HKLM\...\EC414D98E2986DCA1628FAED2163CD1C9A4ED7EC) (Version: 01/07/2016 1.0.3.0 - Arduino LLC (www.arduino.cc)) Package de pilotes Windows - libusb-win32 (libusb0) libusb-win32 devices (04/21/2015 1.0.0.0) (HKLM\...\28E91B69CA377EB48D6E1B92C37F897036E8A818) (Version: 04/21/2015 1.0.0.0 - libusb-win32) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden R6 Tracker (HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Overwolf_ekhcackbfanheaceicpfmhmmeojplojfgkmfnpjo) (Version: 3.6.5 - Overwolf app) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.050.0511.2021 - Realtek) Revo Uninstaller 2.4.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.2 - VS Revo Group, Ltd.) RivaTuner Statistics Server 7.3.4 (HKLM-x32\...\RTSS) (Version: 7.3.4 - Unwinder) RocketLeagueMaps Installer v2 (HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\c829e2e256ae77c8) (Version: 2.0.0.11 - RocketLeagueMaps Installer v2) Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.80.1666 - Rockstar Games) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.2.2 - Rockstar Games) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.46.0 - Samsung Electronics Co., Ltd.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.6.1 - TeamSpeak Systems GmbH) TeamSpeak Overlay (HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\Overwolf_jnabojaampcpfclojlbildognlnebnhfhibiielh) (Version: 1.0.0.2 - Overwolf app) TeamViewer (HKLM\...\TeamViewer) (Version: 15.47.3 - TeamViewer) Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 130.1.10657 - Ubisoft) UCheck version 4.5.0.0 (HKLM\...\C4E7EE54-826F-41C4-BE3C-375CC70DC1D8_is1) (Version: 4.5.0.0 - Adlice Software) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation) WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) XDefiant (HKLM-x32\...\Uplay Install 15657) (Version: - Ubisoft) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-01-23] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_153.1.1137.0_x64__v10z8vjag6ke6 [2024-05-09] (HP Inc.) MSI Center -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSICenter_2.0.37.0_x64__kzh8wxbdkxb8p [2024-06-06] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task] MSI Game Bar -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.MSIGameBar_2.0.14.0_x64__kzh8wxbdkxb8p [2023-05-13] (MICRO-STAR INTERNATIONAL CO., LTD) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-06-05] (NVIDIA Corp.) Recherche Web de Microsoft Bing -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-02-13] (Microsoft Corporation) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0 [2024-06-06] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-07] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_23954e33c8a39da4\nvshext.dll [2024-06-02] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-07] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Fichier non signé] HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Fichier non signé] ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2022-02-06 13:25 - 2022-02-06 13:25 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll 2022-02-06 13:25 - 2022-02-06 13:25 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2024-04-04] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2024-04-04] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-05-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-05-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-05-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-05-31] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKCU\Environment\\Path -> %USERPROFILE%\AppData\Local\Microsoft\WindowsApps HKU\S-1-5-21-3638445059-336407056-3767679770-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jeremy\Downloads\390232.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\Services: AsusUpdateCheck => 2 MSCONFIG\Services: BEService => 3 MSCONFIG\Services: CorsairDeviceListerService => 3 MSCONFIG\Services: CorsairLLAService => 2 MSCONFIG\Services: CorsairService => 2 MSCONFIG\Services: EAAntiCheatService => 3 MSCONFIG\Services: EABackgroundService => 3 MSCONFIG\Services: EasyAntiCheat => 3 MSCONFIG\Services: EasyAntiCheat_EOS => 3 MSCONFIG\Services: EpicOnlineServices => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: HPPrintScanDoctorService => 2 MSCONFIG\Services: iCUEUpdateService => 3 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: OverwolfUpdater => 3 MSCONFIG\Services: rkrtservice => 3 MSCONFIG\Services: Rockstar Service => 3 MSCONFIG\Services: ss_conn_launcher_service => 3 MSCONFIG\Services: ss_conn_service => 2 MSCONFIG\Services: ss_conn_service2 => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\Services: ucldr_Crowz_ST => 3 HKLM\...\StartupApproved\Run: => "CORSAIR iCUE 4 Software" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\StartupFolder: => "DS4Windows.lnk" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\Run: => "BakkesMod" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\Run: => "EADM" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\Run: => "WallpaperEngine" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_EC9CBCB90504BDE1B58010AB1D3B4377" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\Run: => "GoogleDriveFS" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\Run: => "LGHUB" HKU\S-1-5-21-3638445059-336407056-3767679770-1001\...\StartupApproved\Run: => "Overwolf" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{78B43537-BF89-4E2E-A532-4CA7538EC2AD}D:\jeux\steam\steam.exe] => (Allow) D:\jeux\steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [UDP Query User{F63A8A05-C99F-45DE-9BA3-F3A529FDCACD}D:\jeux\steam\steam.exe] => (Allow) D:\jeux\steam\steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{471B4E2B-8943-4A9B-9B51-C2A5D967682F}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{21D8187E-0D01-425A-8211-492F1D430F0A}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [TCP Query User{4D3ED06B-6F37-4B9A-B43B-698F315EBFD7}D:\jeux\gta\grand theft auto v\gta5.exe] => (Allow) D:\jeux\gta\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [UDP Query User{9A0518BF-8B27-4B7A-8F92-32A65B54F5CB}D:\jeux\gta\grand theft auto v\gta5.exe] => (Allow) D:\jeux\gta\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) FirewallRules: [{C393FFF1-5790-40CF-96C1-3C7F1B7EBAFF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2500F5FE-D623-4FB8-B24D-3874FC5C4D0B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{75864C8C-10AD-4FDE-9AFA-31D101EF21D3}C:\program files (x86)\origin games\battlefield 2042\bf2042.exe] => (Allow) C:\program files (x86)\origin games\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [UDP Query User{6E66C58D-898C-4942-8EAE-72BB0D383551}C:\program files (x86)\origin games\battlefield 2042\bf2042.exe] => (Allow) C:\program files (x86)\origin games\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB) FirewallRules: [TCP Query User{DEC9C25C-A0C0-45E3-B52F-3D54FD8AAC62}C:\users\jeremy\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\jeremy\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser (Cfx.re) [Fichier non signé] FirewallRules: [UDP Query User{DD01C941-45C0-440D-B391-3D8468540237}C:\users\jeremy\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser] => (Allow) C:\users\jeremy\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_chromebrowser (Cfx.re) [Fichier non signé] FirewallRules: [TCP Query User{0153534D-1096-44C2-BF22-BBBB6E1D14EA}D:\jeux\epicgame\rocket league\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\jeux\epicgame\rocket league\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{66A09EF9-B6F4-4746-A22C-26E7F76BA416}D:\jeux\epicgame\rocket league\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\jeux\epicgame\rocket league\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [{A7FF88DF-F088-404C-901D-6AF0B4B5958C}] => (Allow) D:\Jeux\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> ) FirewallRules: [{9EF6326A-164C-4A2F-A256-6C6A1DD0FE64}] => (Allow) D:\Jeux\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta Software GmbH -> ) FirewallRules: [{840A182A-A445-460A-96F3-95BBC674FD50}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 2042\BF2042_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [{6E03E852-27F0-4CD6-B602-DA7B138AF091}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 2042\BF2042_launcher.exe (EasyAntiCheat Oy -> Epic Games, Inc) FirewallRules: [TCP Query User{4771775D-958A-434A-BC3F-65B06BDDE40D}D:\jeux\epicgame\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\jeux\epicgame\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{C2EB27F9-C615-4D74-859F-9CA915B09DA8}D:\jeux\epicgame\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) D:\jeux\epicgame\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{6A48C998-D4DB-43FE-88ED-818572F1F4D2}] => (Allow) D:\Jeux\Ubisoft\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{75264023-B8CB-43AD-97C5-BB9A25534337}] => (Allow) D:\Jeux\Ubisoft\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations) FirewallRules: [{85DE3791-4B30-4115-AFC6-482B02E08E25}] => (Allow) D:\Jeux\Ubisoft\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{70B14C6B-694B-48BC-A1AE-1592F4E9A7E4}] => (Allow) D:\Jeux\Ubisoft\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [TCP Query User{6D298B43-A693-4C93-9D6D-18244B467C52}D:\jeux\call of duty\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\jeux\call of duty\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [UDP Query User{C4421DAA-BD4C-4FC7-A71D-1791C12E4472}D:\jeux\call of duty\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\jeux\call of duty\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision) FirewallRules: [{A4D47308-B364-4459-91A0-A81F15FCA108}] => (Allow) C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\USBSetup.exe (HP Inc. -> Hewlett-Packard Co.) FirewallRules: [{623F4FCB-DED9-4BDB-AD47-9D14DCA42837}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{24F27E2C-D7EC-4B58-B04F-A1D9DFC84B00}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [TCP Query User{7356EF40-FD40-4D61-87A7-DF6D203BE64F}D:\jeux\ubisoft\tom clancy's rainbow six siege\rainbowsix_vulkan.exe] => (Allow) D:\jeux\ubisoft\tom clancy's rainbow six siege\rainbowsix_vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [UDP Query User{6BB6E8C6-1A23-454E-8BD6-5CB793BF925F}D:\jeux\ubisoft\tom clancy's rainbow six siege\rainbowsix_vulkan.exe] => (Allow) D:\jeux\ubisoft\tom clancy's rainbow six siege\rainbowsix_vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{1B8851E8-2AAD-46D5-9ED6-2FBF08901C30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8C8279FE-6FC3-4C51-B881-2ACEA56172FF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8F6245AA-A18A-45C9-8F10-3B97C4BEC961}] => (Allow) LPort=32682 FirewallRules: [{DB9865AF-2285-4133-8572-D0B4C724740C}] => (Allow) D:\Jeux\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta Software GmbH -> ) FirewallRules: [{A1E36B7F-78B9-43DD-B20E-2E0EA313F4B9}] => (Allow) D:\Jeux\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Skutta Software GmbH -> ) FirewallRules: [{F8226120-16F5-4EBD-90B0-1678DA0D4AA5}] => (Allow) D:\Jeux\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{157AF5E5-CF2E-4F6F-BA0F-71FE6201495A}] => (Allow) D:\Jeux\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{65A6ED6B-64A1-4AB6-918A-B0608EFBAFED}] => (Allow) D:\Jeux\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{D018D20F-5431-4392-AF26-2F6D95686072}] => (Allow) D:\Jeux\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software) FirewallRules: [{08FB4A27-4D4F-4E19-8160-C778B2DB5B20}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6352D3E8-A210-4212-ACB5-A08C87CF9E4D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{D9CE1536-765D-4760-B7C1-7BCFB8D30F3B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{E7C8DCC5-DAAB-4940-AE37-B1A0DF7CC73A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{E0145898-411F-4AA3-89F0-CF78DC79EE3C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{5D347C89-70D8-4B89-A1AA-8B638999E2A1}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.2.0_c7655632_d1634063_s52436_57712329\1338085414\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.2.0_c7655632_d1634063_s52436_57712329\1338085414\rainbowsix.exe => Pas de fichier FirewallRules: [UDP Query User{86A2B979-FFE4-49C0-83CF-6B1681A700C4}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.2.0_c7655632_d1634063_s52436_57712329\1338085414\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.2.0_c7655632_d1634063_s52436_57712329\1338085414\rainbowsix.exe => Pas de fichier FirewallRules: [{63224597-C1DA-4530-B61F-5B203DFC1B5E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{AB1279C2-9E78-4A7B-83BD-B8CE61BD3CE4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{0A2B3BBF-7F83-4C2F-A6A3-743EC87C6586}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.2.0_c7655632_d1634063_s52436_57712329\3807357438\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.2.0_c7655632_d1634063_s52436_57712329\3807357438\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [UDP Query User{A2BEAB88-2743-4A49-90B9-72EA0F528F23}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.2.0_c7655632_d1634063_s52436_57712329\3807357438\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.2.0_c7655632_d1634063_s52436_57712329\3807357438\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [TCP Query User{88B735FC-276C-4C79-A244-81751C9ED2D6}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.3.0_c7675263_d1637483_s52558_58222837\739167998\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.3.0_c7675263_d1637483_s52558_58222837\739167998\rainbowsix.exe => Pas de fichier FirewallRules: [UDP Query User{44578D0F-DB1A-4FCF-9AEE-1414F8510273}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.3.0_c7675263_d1637483_s52558_58222837\739167998\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.3.0_c7675263_d1637483_s52558_58222837\739167998\rainbowsix.exe => Pas de fichier FirewallRules: [TCP Query User{F44D05D1-55E8-4E03-BA98-A8AD301CD02B}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.3.0_c7675263_d1637483_s52558_58222837\3179882675\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.3.0_c7675263_d1637483_s52558_58222837\3179882675\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [UDP Query User{B36EFE36-2193-4AFA-BF94-CABC95439322}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.3.0_c7675263_d1637483_s52558_58222837\3179882675\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s2.3.0_c7675263_d1637483_s52558_58222837\3179882675\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [{07B485E2-3334-4236-A208-E0F08CC2B1CD}] => (Allow) D:\Jeux\Steam\steamapps\common\Farming Simulator 22\x64\FarmingSimulator2022Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) FirewallRules: [{A357CE76-96BB-4D3C-99D6-4925ADFDB1CB}] => (Allow) D:\Jeux\Steam\steamapps\common\Farming Simulator 22\x64\FarmingSimulator2022Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH) FirewallRules: [{8843895A-906E-4CD8-8CC6-91AF1047FD44}] => (Allow) LPort=26822 FirewallRules: [{582A897B-F9C8-4E74-9549-D9B45C524481}] => (Allow) LPort=32683 FirewallRules: [TCP Query User{6FE2F109-5906-471A-8155-D4F9B4EAF1EA}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\2235561467\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\2235561467\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [UDP Query User{7730510B-FA2E-47A6-9B4D-45188B58ED5B}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\2235561467\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.1.0_c7787138_d1822042_s53716_61288037\2235561467\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [TCP Query User{1F96C8CC-37E6-4BC2-A47B-10C6BBAEA909}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.2.0_c7809642_d1826489_s53994_61856269\3968409509\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.2.0_c7809642_d1826489_s53994_61856269\3968409509\rainbowsix.exe => Pas de fichier FirewallRules: [UDP Query User{E1736230-DC38-4087-8443-081BC5C24393}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.2.0_c7809642_d1826489_s53994_61856269\3968409509\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.2.0_c7809642_d1826489_s53994_61856269\3968409509\rainbowsix.exe => Pas de fichier FirewallRules: [TCP Query User{91F9A50B-5D38-4CE3-9E6C-661544E08004}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.3.0_c7840976_d1833079_s54156_62486471\335092143\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.3.0_c7840976_d1833079_s54156_62486471\335092143\rainbowsix.exe => Pas de fichier FirewallRules: [UDP Query User{2D554F79-F792-4E0D-A5E7-2D05C6B8FBAF}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.3.0_c7840976_d1833079_s54156_62486471\335092143\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.3.0_c7840976_d1833079_s54156_62486471\335092143\rainbowsix.exe => Pas de fichier FirewallRules: [TCP Query User{D0D3DCAB-3039-4378-A726-EB92864323B1}D:\jeux\ea sports fc 24\fc24.exe] => (Allow) D:\jeux\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [UDP Query User{49855740-66C0-4581-B904-ADC932F44036}D:\jeux\ea sports fc 24\fc24.exe] => (Allow) D:\jeux\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{1AFF68BE-D2EC-4775-9A34-9F92FE3AD688}C:\program files (x86)\ubisoft\ubisoft game launcher\uplaywebcore.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\uplaywebcore.exe (Ubisoft Entertainment Sweden AB -> Ubisoft) FirewallRules: [UDP Query User{874FAADB-FE4B-484D-BA08-02B10EFBC645}C:\program files (x86)\ubisoft\ubisoft game launcher\uplaywebcore.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\uplaywebcore.exe (Ubisoft Entertainment Sweden AB -> Ubisoft) FirewallRules: [TCP Query User{A999C9F9-B300-427E-AD6D-94CEAA5D649D}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.0_c7867568_d1837728_s54156_63040691\2545300153\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.0_c7867568_d1837728_s54156_63040691\2545300153\rainbowsix.exe => Pas de fichier FirewallRules: [UDP Query User{35A9BE59-734C-4614-B9BE-0A7A85F2953D}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.0_c7867568_d1837728_s54156_63040691\2545300153\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.0_c7867568_d1837728_s54156_63040691\2545300153\rainbowsix.exe => Pas de fichier FirewallRules: [TCP Query User{BA490968-CED6-4ADE-B1F7-45C84808E39D}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.0_c7867568_d1837728_s54156_63040691\1766484429\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.0_c7867568_d1837728_s54156_63040691\1766484429\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [UDP Query User{7E75E355-920B-4029-AD4F-3DD6D4DE7E06}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.0_c7867568_d1837728_s54156_63040691\1766484429\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.0_c7867568_d1837728_s54156_63040691\1766484429\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [{AEFA1A04-9C2B-40F9-A9CC-5D2D497E0154}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{C8CC9B14-6C61-4772-831B-0BDF6DC254B1}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{1896B8CC-B1F4-4554-96C1-78D62B52F9FC}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{BF072259-DFC4-43E8-A475-3D8A94DA330D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [TCP Query User{3E5185ED-1395-4545-893D-110B9BB38C85}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.1_c7906785_d1837728_s54156_63842686\3999123010\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.1_c7906785_d1837728_s54156_63842686\3999123010\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [UDP Query User{EC8EA9D1-6309-4EA3-AF18-F371499AE6DF}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.1_c7906785_d1837728_s54156_63842686\3999123010\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.1_c7906785_d1837728_s54156_63842686\3999123010\rainbowsix_vulkan.exe => Pas de fichier FirewallRules: [TCP Query User{F210B82F-2443-4BD8-AA6A-4A6AA5DC0789}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.1_c7906785_d1837728_s54156_63842686\4072455558\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.1_c7906785_d1837728_s54156_63842686\4072455558\rainbowsix.exe => Pas de fichier FirewallRules: [UDP Query User{1D83F59E-CBB2-4950-9B8D-12DC2530A72B}C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.1_c7906785_d1837728_s54156_63842686\4072455558\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y8s3.4.1_c7906785_d1837728_s54156_63842686\4072455558\rainbowsix.exe => Pas de fichier FirewallRules: [TCP Query User{9D72A6D2-273B-49EC-8140-14A94657CF8B}C:\users\jeremy\appdata\local\ubisoft\r6siege\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\rainbowsix_vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [UDP Query User{C1CD7EB2-8F12-42B8-B442-739277096445}C:\users\jeremy\appdata\local\ubisoft\r6siege\rainbowsix_vulkan.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\rainbowsix_vulkan.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [TCP Query User{0EBE6F9C-927F-4752-9D62-03A97BA1294B}C:\users\jeremy\appdata\local\ubisoft\r6siege\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [UDP Query User{DEBFE455-6B3B-4E5D-8DFF-AA9246360DE4}C:\users\jeremy\appdata\local\ubisoft\r6siege\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{2C77501C-E851-4991-B694-5FAFE2D0505B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5C8DF0B0-5E91-4AD4-9748-1F288B9145DC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{FD028A11-466A-47EA-9F2C-E62AF2147DFB}C:\users\jeremy\appdata\local\ubisoft\r6siege\y9s1.2.0_c8178548_d1893250_s58856_69866602\112600749\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y9s1.2.0_c8178548_d1893250_s58856_69866602\112600749\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [UDP Query User{053575B5-9E88-44A2-A307-1EA619C67E38}C:\users\jeremy\appdata\local\ubisoft\r6siege\y9s1.2.0_c8178548_d1893250_s58856_69866602\112600749\rainbowsix.exe] => (Allow) C:\users\jeremy\appdata\local\ubisoft\r6siege\y9s1.2.0_c8178548_d1893250_s58856_69866602\112600749\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft) FirewallRules: [{7F735999-2B6E-4BD8-8E80-59F5777E0BF3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{3FDACF01-8798-4836-8594-C59C7F6BD326}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{B8916D79-05A2-4082-BC3E-C5CBB7E20E74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C50A7972-A8C9-48D8-82AA-49A149A82BA5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{272EF93A-A4CA-4F14-9A19-31A893423492}C:\users\jeremy\downloads\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\jeremy\downloads\teamspeak3-server_win64\ts3server.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) FirewallRules: [UDP Query User{8F7097AA-91BE-4339-BA1B-ACAD0BB9A689}C:\users\jeremy\downloads\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\jeremy\downloads\teamspeak3-server_win64\ts3server.exe (TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) FirewallRules: [{2954C746-858B-4BDE-ACCB-4AD44841B4BD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{875FDDF6-70FF-4EAA-ACFD-3073325B8C76}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{24F6BB73-62AA-441F-B64E-9D4659297BD5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E22F2538-9A4E-469E-83DA-E9578FE743A1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.119.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6B852CAE-8DDB-4073-AF55-1D5CE8962822}] => (Allow) D:\Jeux\Steam\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe (Pipeworks Inc) [Fichier non signé] FirewallRules: [{316463CD-D9CB-40EA-A8C7-CE27ACD657D5}] => (Allow) D:\Jeux\Steam\steamapps\common\Prominence Poker\Prominence\Binaries\Win64\Prominence-Win64-Shipping.exe (Pipeworks Inc) [Fichier non signé] FirewallRules: [{40D8CCD4-3B44-4761-B59A-E618C5A6753D}] => (Allow) D:\Jeux\EA SPORTS FC 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{F7FB5B20-66DB-49CE-A84C-86AE9E551ED2}] => (Allow) D:\Jeux\EA SPORTS FC 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{5ADAB6BF-2694-48D0-8CAC-99528FBD2AB5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{3808E95F-335C-4B76-AA4F-32E333A04139}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{7DA4472F-F973-4699-8D1C-D1D6FEF7DF3A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{9FEFC251-DA8C-4505-99DE-74D8ABBAE658}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{27B69D70-2882-4FD5-BFD9-49FD25B1C913}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C0A6D773-D4D5-49BF-BA98-05D401D2F2E9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{97EABC3A-3CA9-4DBE-8992-29658B890B65}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{B9BE8516-153A-4BF2-ACF1-5460BCB53353}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{B0E16D75-F4AF-4E09-A41A-49242BD0BCB2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{DFD32DF7-CBDC-43CF-A9F6-548060816701}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{D2A82F3C-2E2E-4671-8184-708B61B604D2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{250864C1-2242-44A5-9358-6F83E03DD487}] => (Allow) C:\Program Files (x86)\Overwolf\0.250.1.1\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{C7444930-1F7C-455F-BDC8-4E5C9090BE4F}] => (Allow) C:\Program Files (x86)\Overwolf\0.250.1.1\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{579CF498-F022-4A29-932E-AC29FEE7A866}] => (Block) C:\Program Files (x86)\Overwolf\0.250.1.1\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{4E8BD012-8AD6-4FE4-B14E-D0E50847705A}] => (Block) C:\Program Files (x86)\Overwolf\0.250.1.1\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{7FAD7019-4E83-427A-B190-10CF913EA605}] => (Allow) C:\Program Files (x86)\Overwolf\0.251.1.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{D1A5F0DE-4AB0-412B-A34D-66C89606DD4E}] => (Allow) C:\Program Files (x86)\Overwolf\0.251.1.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{40E2B734-20E5-4438-A6EC-498485B4B1AB}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\125.0.2535.85\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F0275A8A-DF2E-495F-8930-A7FC29D1E8AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{736C3659-7065-4575-A908-ED801C38B9E7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{4F22CCC8-49B2-42B3-A028-596C0BC88A4D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{A5AC587C-C625-4548-8449-BFBD6B2F8F45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{200080EF-98D4-442C-92A2-28F73629B929}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{01159DD9-3202-41B5-ADAB-46483A4C7180}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{702411EB-9C52-457B-922F-27C173049F98}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{17D65181-B8AD-41F2-B422-48D954F27626}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{9744F2B5-C2BE-4C11-AA8A-6C27151B7502}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{FEA14F51-F452-4A0C-96D9-4ADD0BF0BF32}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.239.578.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) ==================== Points de restauration ========================= 01-06-2024 22:01:01 Point de contrôle planifié 05-06-2024 19:56:13 Removed FxSound ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (06/05/2024 11:13:18 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante nvcontainer.exe, version : 1.40.3345.4032, horodatage : 0x653a1567 Nom du module défaillant : ntdll.dll, version : 10.0.19041.4355, horodatage : 0x35a939aa Code d’exception : 0xc000041d Décalage d’erreur : 0x000000000002faad ID du processus défaillant : 0x12ac Heure de début de l’application défaillante : 0x01dab7194dca3345 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 607144dc-d501-4533-b045-a5bff409762d Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (06/05/2024 11:13:17 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante nvcontainer.exe, version : 1.40.3345.4032, horodatage : 0x653a1567 Nom du module défaillant : ntdll.dll, version : 10.0.19041.4355, horodatage : 0x35a939aa Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000002faad ID du processus défaillant : 0x12ac Heure de début de l’application défaillante : 0x01dab7194dca3345 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 9d12b6ea-a47c-488b-b5e3-7264fd53d114 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (05/31/2024 08:43:31 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-10V1PE3) Description: Impossible de fermer l’application ou le service « Microsoft Office SDX Helper ». Error: (05/31/2024 07:47:13 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme StartMenuExperienceHost.exe version 0.0.0.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 2048 Heure de début : 01dab31dd7c98a01 Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe ID de rapport : 7d5f932a-bcc4-4b2d-80c2-d0775f7e3dcf Nom complet du package défectueux : Microsoft.Windows.StartMenuExperienceHost_10.0.19041.4239_neutral_neutral_cw5n1h2txyewy ID de l'application relative à un package défectueux : App Type de blocage : Cross-thread Error: (05/30/2024 07:52:00 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide. Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (05/26/2024 12:36:18 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme StartMenuExperienceHost.exe version 0.0.0.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 1a28 Heure de début : 01daaf5865e1e0bf Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe ID de rapport : dd84e007-72f0-449a-92d9-cc64c8bf6e19 Nom complet du package défectueux : Microsoft.Windows.StartMenuExperienceHost_10.0.19041.4239_neutral_neutral_cw5n1h2txyewy ID de l'application relative à un package défectueux : App Type de blocage : Cross-thread Error: (05/25/2024 12:02:54 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ts3client_win64.exe, version : 3.6.2.0, horodatage : 0x650ac282 Nom du module défaillant : ucrtbase.dll, version : 10.0.19041.3636, horodatage : 0x81cf5d89 Code d’exception : 0xc0000409 Décalage d’erreur : 0x000000000007286e ID du processus défaillant : 0x428 Heure de début de l’application défaillante : 0x01daae8ab432a497 Chemin d’accès de l’application défaillante : C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe Chemin d’accès du module défaillant: C:\Windows\System32\ucrtbase.dll ID de rapport : 5590f701-1fab-4471-a33d-71c05c47f8cf Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (05/11/2024 01:01:32 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-10V1PE3) Description: Impossible de fermer l’application ou le service « Microsoft Office SDX Helper ». Erreurs système: ============= Error: (06/07/2024 06:00:00 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: AUTORITE NT) Description: La mise à jour du démarrage sécurisé n’a pas pu mettre à jour une variable de démarrage sécurisé avec l'erreur -2147020471. Pour plus d'informations, veuillez consulter https://go.microsoft.com/fwlink/?linkid=2169931 Error: (06/07/2024 04:24:23 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-10V1PE3) Description: Le serveur Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/07/2024 04:24:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-10V1PE3) Description: Le serveur Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/07/2024 04:23:55 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-10V1PE3) Description: Le serveur Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/07/2024 04:23:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-10V1PE3) Description: Le serveur Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/07/2024 04:23:26 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-10V1PE3) Description: Le serveur Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/07/2024 04:23:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-10V1PE3) Description: Le serveur Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/07/2024 10:14:58 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: AUTORITE NT) Description: La mise à jour du démarrage sécurisé n’a pas pu mettre à jour une variable de démarrage sécurisé avec l'erreur -2147020471. Pour plus d'informations, veuillez consulter https://go.microsoft.com/fwlink/?linkid=2169931 Windows Defender: ================ Date: 2024-06-07 10:32:25 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {F8B086BA-579D-4F89-B47A-335AF6F9B133} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-06-06 11:30:54 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {4EA2C26F-D6A0-4B1F-8DE4-8534180C2B54} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-06-05 11:01:09 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {6AEFE23F-53E6-4D0E-BE14-0D189B856B1E} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-06-04 19:19:40 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {2D10FA90-130A-419F-8F4E-1A8396BA3F3C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-06-04 12:45:06 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {63D64E93-9387-403F-8C6D-DDE3ED5F7596} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Event[0]: Date: 2023-06-23 22:31:04 Description: La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x8007043c Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec Raison : La veille de sécurité contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème. Date: 2023-06-20 18:03:35 Description: Antivirus Microsoft Defender a rencontré une erreur lors du chargement d’un fichier suspect vers le serveur en vue d’une analyse complémentaire. Nom de fichier : C:\Users\Jeremy\Desktop\kali-linux-2023.2a-installer-amd64.iso Sha256 : 9553fa25ab5c12d3e44f874117cf1f9889158db3baebb593355d4c401b27ccc0 Version actuelle de la veille de sécurité : AV: 1.391.2070.0, AS: 1.391.2070.0 Version actuelle du moteur : 1.1.23050.3 Code d’erreur : 0x80508016 Date: 2023-05-26 21:46:33 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité et va tenter de rétablir une version précédente. Veille de sécurité tentée : Actuelle Code d’erreur : 0x80501102 Description de l’erreur : Un problème inattendu s’est produit. Installez toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support. Version de la veille de sécurité : 1.389.2469.0;1.389.2469.0 Version du moteur : 1.1.20300.3 CodeIntegrity: =============== Date: 2024-06-07 16:22:41 Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Users\Jeremy\AppData\Local\Discord\app-1.0.9148\Discord.exe) attempted to load \Device\HarddiskVolume8\Program Files (x86)\Overwolf\0.251.1.1\OWClient.dll that did not meet the Microsoft signing level requirements. Date: 2024-06-07 16:22:41 Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Users\Jeremy\AppData\Local\Discord\app-1.0.9148\Discord.exe) attempted to load \Device\HarddiskVolume8\Program Files (x86)\Overwolf\0.251.1.1\ow-graphics-vulkan.dll that did not meet the Microsoft signing level requirements. Date: 2024-06-07 16:22:41 Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Users\Jeremy\AppData\Local\Discord\app-1.0.9148\Discord.exe) attempted to load \Device\HarddiskVolume8\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer64.dll that did not meet the Microsoft signing level requirements. Date: 2024-06-07 16:22:41 Description: Code Integrity determined that a process (\Device\HarddiskVolume8\Users\Jeremy\AppData\Local\Discord\app-1.0.9148\Discord.exe) attempted to load \Device\HarddiskVolume8\ProgramData\obs-studio-hook\graphics-hook64.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1202 10/22/2020 Carte mère: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS Processeur: AMD Ryzen 7 3700X 8-Core Processor Pourcentage de mémoire utilisée: 29% Mémoire physique - RAM - totale: 16265.77 MB Mémoire physique - RAM - disponible: 11461 MB Mémoire virtuelle totale: 27529.77 MB Mémoire virtuelle disponible: 21023 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:222.95 GB) (Free:27.09 GB) (Model: Force MP510) NTFS Drive d: () (Fixed) (Total:931.5 GB) (Free:467.21 GB) (Model: Samsung SSD 870 QVO 1TB) NTFS Drive e: (Disque local) (Fixed) (Total:931.5 GB) (Free:898.81 GB) (Model: ST1000DM010-2EP102) NTFS Drive f: (Disque local) (Fixed) (Total:931.51 GB) (Free:931.38 GB) (Model: SAMSUNG HD103SI) NTFS \\?\Volume{32a077ef-f4d4-4aa5-916e-165813a526ec}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS \\?\Volume{3dc2d7e2-1653-4014-a039-9ec761157400}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 3 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt =======================